I was just about to post this question, then I found the answer on my own. I thought I would post it here anyway for all to read, just in case somebody else has the same problems. ----------------------------------------------------------------------------------- I have setup everything and it seems to be working correctly. I don't see any problems with the main part of the script. When a registered user clicks the link in the member.php page for the link to a subscription, the following happens: Even though the link is formatted as such http://usernameassword@domain.com/url/to protected/area/file.zip, it still pops up the standard System Login Box, asking for UserID and Password. I believe this can happen when the id and pw supplied can't be verified. Then when I type in the correct username and password, it still gets denied! I have checked the .htpasswd and .htgroup files and they all seem to be in order with ids and passwords of my members. Everything seems to be installed correctly, but my system can't authenticate a user. ---------------------------------------------------------------------------------------------- Ok, here is the answer, for me anyway. My server is controlled by Ensim Webbpliance Pro 2.5. If in "HIGH" security mode, it uses a "Virtual" file sytsem for security reasons. Inside my .htaccess files, I had the following paths defined: AuthUserFile /var/www/html/members/data/.htpasswd AuthGroupFile /var/www/html/members/data/.htgroup Since this site is in high security mode, I tried typing in the whole virtual path, which looks more like this. AuthUserFile /home/virtual/site3/fst/var/www/html/members/data/.htpasswd AuthGroupFile /home/virtual/site3/fst/var/www/html/members/data/.htgroup I believe only the Admin of the server can give this info to you. As a customer on an Ensim Webbpliance Pro server, you do not have access to this information (the site# part). (I am the admin on this server, so it was easy for me to find) Once I changed this, it started working right. It was the path to .htpasswd and .htgroup, inside the .htaccess file the whole time. Summary: If you are installing .htaccess files for protection and your server uses Ensim Webbpliance Pro in High Security mode, you will need to use the entire virtual path inside all your .htaccess files. You should be able to email your admin and tell them the situation and ask them what site # you are. Hope this helps someone, someday. Brian
Just wanted to correct the version of Webbpliance Pro above. It's with the newest verion 3.5 Not 2.5. Sorry! Brian
Brian, try to open aMember CP -> "Info and some URLs" - real path should be visible here. Also , it is automatically substituted and visible at aMember CP -> Setup -> htpasswd